Dockerize Securely
A Jfokus talk on building secure container images using SBOMs, OCI 1.1 attestations, and Docker Bake, told through the narrative of the Docker Commandos in Asgard.
Talk Deliveries
July 9, 2026
Berlin, Germany
February 3, 2026
Stockholm, Sweden
Building secure container images is not just about the final artifact; it's about the entire supply chain. In this talk, Mohammad-Ali A'rabi introduces the Docker Commandos and their mission to defend Asgard from CVE monsters.
The session walks through the practical implementation of modern container security tools and standards.
Key Security Pillars
- Software Bill of Materials (SBOM): Learning how to generate a comprehensive inventory of everything inside your image.
- OCI 1.1 Attestations: Attaching cryptographically signed metadata to your images that travels with them across registries.
- Docker Bake: Systematizing the build process to ensure that security checks, SBOM generation, and signing are never skipped.
The talk uses a unique mythological narrative to make complex DevSecOps concepts accessible and memorable.